arkei | 6c0dc941cf174c474ea4df5fc6ae1236e61050c40cdae384294429ff726c7c28 | Triage

Submit
Reports

Overview

overview

Static

static

dridex

windows10-2004_x64

Sharing

General

Target

6c0dc941cf174c474ea4df5fc6ae1236e61050c40cdae384294429ff726c7c28
Size

331KB
Sample

220117-2a8xdsdfhm
MD5

e3708b70a0727faa38255877175e229d
SHA1

dafe5c3dc29da200b7ee769496204ec54e9f024c
SHA256

6c0dc941cf174c474ea4df5fc6ae1236e61050c40cdae384294429ff726c7c28
SHA512

06946f9a91da10dbc58b15db691ff74ce9fd1b9630f8831d2699be2b48b533755564c739b2933e39026cfddaeff976cd1e70276975829d8ba05be341fde3b347

Score

10^/10

arkei default stealer

Static task

static1

Behavioral task

behavioral1

Sample

6c0dc941cf174c474ea4df5fc6ae1236e61050c40cdae384294429ff726c7c28.exe

Resource

win10v2004-en-20220112

arkei default stealer

windows10-2004_x64

0 signatures

0 seconds

Malware Config

Extracted

Family

arkei

Botnet

Default

C2

http://file-file-host4.com/tratata.php

Targets

- Target
  
  6c0dc941cf174c474ea4df5fc6ae1236e61050c40cdae384294429ff726c7c28
- Size
  
  331KB
- MD5
  
  e3708b70a0727faa38255877175e229d
- SHA1
  
  dafe5c3dc29da200b7ee769496204ec54e9f024c
- SHA256
  
  6c0dc941cf174c474ea4df5fc6ae1236e61050c40cdae384294429ff726c7c28
- SHA512
  
  06946f9a91da10dbc58b15db691ff74ce9fd1b9630f8831d2699be2b48b533755564c739b2933e39026cfddaeff976cd1e70276975829d8ba05be341fde3b347
Score

10^/10

arkei default stealer
- Arkei
  Arkei is an infostealer written in C++.
  stealer arkei
- Suspicious use of NtCreateProcessExOtherParentProcess
- Arkei Stealer Payload
  stealer
behavioral1

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Tasks

static1

behavioral1

arkeidefaultstealer

© 2018-2024

Terms | Privacy